High-profile attacks in recent years targeting the X.509 Public Key Infrastructure (PKIX) used for securing Internet communication have underlined the urgency of the need for technology capable of plugging the security hole in the PKIX ecosystem. It is against this background that the IETF has developed the DANE protocol, based on the DNS. Entitled “Securing Internet communications end-to-end with DANE“, the 12th issue paper published by Afnic explains what DANE is and how this protocol can provide the necessary confidence in the last mile infrastructure by using DNSSEC.
In a dozen pages with graphics, the document:
- discusses the conditions that created the need for technology such as DANE;
- presents the solution used to deploy an end-to-end security mechanism for the Internet;
- addresses the various features of DANE;
Afnic is the acronym for Association Française pour le Nommage Internet en Coopération, the French Network Information Centre. The registry has been appointed by the French government to manage domain names under the .fr Top Level Domain. Afnic also manages the .re (Reunion Island), .pm (Saint-Pierre and Miquelon), .tf (French Southern and Antarctic Territories), .wf (Wallis and Futuna) and .yt (Mayotte) French Overseas TLDs.
In addition to managing French TLDs, Afnic’s role is part of a wider public interest mission, which is to contribute on a daily basis, thanks to the efforts of its teams and its members, to a secure and stable internet, open to innovation and in which the French internet community plays a leading role. As part of that mission, Afnic, a non-profit organization, donates 90% of its profits to its Foundation for Digital Solidarity. Afnic is also the back-end registry for the companies as well as local and regional authorities that have chosen to have their own TLD, such as .paris, .bzh, .alsace, .corsica, .mma, .ovh, .leclerc and .sncf.
Established in 1997 and based in Saint-Quentin-en-Yvelines, Afnic currently has 80 employees.